Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/C65QIJbiLILTN4Y4z9f-BBBLsMY.roa
File: C65QIJbiLILTN4Y4z9f-BBBLsMY.roa (raw, json)
Hash identifier: gMwUo5xfXezEbK6tZfdecvzSt6rpNc0EPOVtl1fs/RY=
Subject key identifier: 0B:AE:50:20:96:E2:2C:82:D3:37:86:38:CF:D7:FE:04:10:4B:B0:C6
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FBE5F4F
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/C65QIJbiLILTN4Y4z9f-BBBLsMY.roa
Signing time: Sat 01 Jan 2022 10:04:52 +0000
ROA not before: Sat 01 Jan 2022 10:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47628
IP address blocks: 91.224.54.0/24 maxlen: 24
91.224.55.0/24 maxlen: 24
185.57.140.0/24 maxlen: 24
185.57.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 801005391 (0x2fbe5f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bae502096e22c82d3378638cfd7fe04104bb0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d7:ad:63:6d:66:00:b3:95:fb:bd:8b:78:3d:
1c:2b:b3:30:d8:9b:5a:c2:f4:74:6f:c7:66:be:5d:
3d:19:c6:91:bb:bc:2c:0b:71:a1:76:80:93:be:d8:
75:97:b4:10:c3:df:93:e0:ce:ca:d1:df:80:2c:29:
87:53:60:e9:b3:d6:9c:8b:e3:4c:67:84:2a:4f:ab:
91:7d:de:d5:90:ac:3e:0a:c6:38:ed:2e:43:32:e0:
9d:5f:90:e1:b5:1f:2a:23:d1:89:6a:a0:85:d9:d9:
75:ed:af:20:f5:50:d9:1d:f0:80:c7:5b:25:ee:74:
15:34:01:22:af:ae:ca:ed:eb:5c:bc:5c:15:1a:ab:
e3:86:5a:87:7a:d7:9a:9c:19:d8:f7:1b:d2:c9:34:
3f:ff:fc:c3:e6:94:17:ac:13:ec:89:6a:24:9b:80:
a5:e1:27:81:2a:89:96:d6:44:5e:12:84:d0:5d:7d:
c4:a8:ae:bf:ca:fe:34:72:99:cd:3f:65:e2:2c:92:
d0:a0:f8:72:79:e5:e7:2b:43:60:cd:36:8e:b4:36:
77:66:8f:58:36:65:32:bd:ef:19:cc:14:cb:86:e5:
6b:d2:ec:55:30:87:06:c9:10:5b:34:9d:4b:43:67:
40:fb:c3:3a:98:b1:23:6b:59:12:60:99:7c:55:23:
71:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AE:50:20:96:E2:2C:82:D3:37:86:38:CF:D7:FE:04:10:4B:B0:C6
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/C65QIJbiLILTN4Y4z9f-BBBLsMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.54.0/23
185.57.140.0/23
Signature Algorithm: sha256WithRSAEncryption
97:e2:5d:53:bf:1f:1f:16:58:be:88:0a:f8:9c:34:08:48:8a:
58:ca:ff:23:89:d8:e6:03:d8:19:13:5d:90:1c:51:17:00:97:
c3:e2:4b:44:cc:7e:af:81:e1:4f:93:d8:89:79:4c:f1:7f:ac:
7b:f0:7e:88:a7:dd:f5:d4:6f:95:19:42:8f:e0:cc:16:d9:5e:
39:bd:14:53:a5:33:43:01:04:de:99:ec:a8:c3:06:b1:37:8c:
9b:02:d5:f6:97:fa:1d:e1:1a:0b:74:bd:b6:25:21:dd:2b:18:
a4:f2:e9:8c:fe:0c:ed:ff:91:88:3a:3c:ce:be:58:60:ff:da:
78:67:e6:53:e3:97:ff:18:bd:82:cd:bd:65:c0:21:e5:50:03:
87:45:60:d0:24:f7:d4:63:dd:df:43:4e:27:cb:05:54:05:c2:
4c:48:83:98:81:2c:d0:a0:ce:a0:0c:3b:e6:b2:82:da:e3:cb:
a6:b1:b8:d4:ee:6f:a0:12:9d:ad:1d:1a:bf:a4:b3:a7:79:11:
90:20:5b:9a:f6:27:a3:48:f6:08:c9:97:06:20:0e:8c:5b:01:
6a:be:d2:a1:c3:49:3d:75:cb:9f:bf:ae:33:2e:50:60:5c:43:
92:f1:dd:6e:50:48:93:32:cc:67:c8:85:36:e4:4f:96:91:c6:
1d:42:2f:d4
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEL75fTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mzk4MDYwZjFiZjIyZjA5OTljYjA3MWIxYjQyNjk2ZGJjNDNlMTBjMB4XDTIyMDEw
MTEwMDQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGJhZTUwMjA5NmUy
MmM4MmQzMzc4NjM4Y2ZkN2ZlMDQxMDRiYjBjNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJnXrWNtZgCzlfu9i3g9HCuzMNibWsL0dG/HZr5dPRnGkbu8
LAtxoXaAk77YdZe0EMPfk+DOytHfgCwph1Ng6bPWnIvjTGeEKk+rkX3e1ZCsPgrG
OO0uQzLgnV+Q4bUfKiPRiWqghdnZde2vIPVQ2R3wgMdbJe50FTQBIq+uyu3rXLxc
FRqr44Zah3rXmpwZ2Pcb0sk0P//8w+aUF6wT7IlqJJuApeEngSqJltZEXhKE0F19
xKiuv8r+NHKZzT9l4iyS0KD4cnnl5ytDYM02jrQ2d2aPWDZlMr3vGcwUy4bla9Ls
VTCHBskQWzSdS0NnQPvDOpixI2tZEmCZfFUjcZkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQLrlAgluIsgtM3hjjP1/4EEEuwxjAfBgNVHSMEGDAWgBTDmAYPG/IvCZnL
BxsbQmltvEPhDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3c1Z0dEeHZ5THdtWnl3Y2JHMEpwYmJ4RDRRdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvM2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8x
L0M2NVFJSmJpTElMVE40WTR6OWYtQkJCTHNNWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
M2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8xL3c1Z0dEeHZ5THdt
Wnl3Y2JHMEpwYmJ4RDRRdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVvgNgMEAbk5jDANBgkqhkiG9w0B
AQsFAAOCAQEAl+JdU78fHxZYvogK+Jw0CEiKWMr/I4nY5gPYGRNdkBxRFwCXw+JL
RMx+r4HhT5PYiXlM8X+se/B+iKfd9dRvlRlCj+DMFtleOb0UU6UzQwEE3pnsqMMG
sTeMmwLV9pf6HeEaC3S9tiUh3SsYpPLpjP4M7f+RiDo8zr5YYP/aeGfmU+OX/xi9
gs29ZcAh5VADh0Vg0CT31GPd30NOJ8sFVAXCTEiDmIEs0KDOoAw75rKC2uPLprG4
1O5voBKdrR0av6Szp3kRkCBbmvYno0j2CMmXBiAOjFsBar7SocNJPXXLn7+uMy5Q
YFxDkvHdblBIkzLMZ8iFNuRPlpHGHUIv1A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org